SECURITY: Fix extension detection with 2 .'s

author Tim Starling <tstarling@wikimedia.org>

Wed, 14 Aug 2013 16:31:05 +0000 (09:31 -0700)

committer CSteipp <csteipp@wikimedia.org>

Tue, 3 Sep 2013 22:10:31 +0000 (22:10 +0000)
author Tim Starling <tstarling@wikimedia.org>
Wed, 14 Aug 2013 16:31:05 +0000 (09:31 -0700)
committer CSteipp <csteipp@wikimedia.org>
Tue, 3 Sep 2013 22:10:31 +0000 (22:10 +0000)
diff --git a/includes/libs/IEUrlExtension.php b/includes/libs/IEUrlExtension.php

index 79387e6..49d05d4 100644 (file)
--- a/includes/libs/IEUrlExtension.php
+++ b/includes/libs/IEUrlExtension.php
@@ -232,7 +232,7 @@ class IEUrlExtension {
                         }
                         // We found an illegal character or another dot
                         // Skip to that character and continue the loop
-                       $pos = $nextPos + 1;
+                       $pos = $nextPos;
                         $remainingLength = $urlLength - $pos;
                 }
                 return false;
diff --git a/tests/phpunit/includes/libs/IEUrlExtensionTest.php b/tests/phpunit/includes/libs/IEUrlExtensionTest.php

index 984907b..d04dd7d 100644 (file)
--- a/tests/phpunit/includes/libs/IEUrlExtensionTest.php
+++ b/tests/phpunit/includes/libs/IEUrlExtensionTest.php
@@ -115,4 +115,12 @@ class IEUrlExtensionTest extends MediaWikiTestCase {
                         'Dot at end of string'
                 );
         }
+
+       function testTwoDots() {
+               $this->assertEquals(
+                       'z',
+                       IEUrlExtension::findIE6Extension( 'x.y.z' ),
+                       'Two dots'
+               );
+       }
  }
author	Tim Starling <tstarling@wikimedia.org>
	Wed, 14 Aug 2013 16:31:05 +0000 (09:31 -0700)
committer	CSteipp <csteipp@wikimedia.org>
	Tue, 3 Sep 2013 22:10:31 +0000 (22:10 +0000)
includes/libs/IEUrlExtension.php		patch \| blob \| history
tests/phpunit/includes/libs/IEUrlExtensionTest.php		patch \| blob \| history